Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4BBFF940EA811EF96AE4A5D017001B1.roa
File: E4BBFF940EA811EF96AE4A5D017001B1.roa (raw, json)
Hash identifier: nPR1uzf5/DAqny9A7N9mxhZnEn1Cs8BC1+34JuM/UQ4=
Subject key identifier: 8B:93:4E:E2:5C:33:E1:2B:89:AA:98:D8:0A:E5:1F:CE:E8:F2:3F:54
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B65A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4BBFF940EA811EF96AE4A5D017001B1.roa
Signing time: Fri 10 May 2024 08:40:03 +0000
ROA not before: Fri 10 May 2024 08:39:59 +0000
ROA not after: Mon 20 May 2024 08:39:59 +0000
asID: 142062
IP address blocks: 154.206.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46682 (0xb65a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 08:39:59 2024 GMT
Not After : May 20 08:39:59 2024 GMT
Subject: CN=663ddd63-c4cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:21:96:e5:8e:12:40:cd:3b:7c:6b:25:2e:59:
8d:a1:0b:4d:b9:4e:b1:88:6e:25:8e:06:45:9a:68:
30:3b:1e:75:d7:b4:db:3d:62:32:0c:e3:e6:56:2b:
18:ce:b4:49:82:81:12:06:6c:4e:1b:ec:93:ae:a6:
5d:a0:ee:7b:60:0f:33:ef:b9:49:56:af:89:00:07:
b0:c2:97:e6:bf:25:8a:4d:c0:b7:75:fa:8a:fe:93:
7a:91:57:57:50:2f:ec:4b:51:0c:95:f6:2f:63:1b:
e0:c9:d1:72:36:21:e2:61:ab:bc:f5:1f:be:db:39:
73:d0:84:02:64:63:bf:33:d7:8f:f5:f8:5d:79:86:
de:d4:8b:60:4d:10:0d:a9:1d:19:7f:08:7c:f2:6b:
41:20:67:16:a5:21:db:73:31:ae:9f:56:7b:20:3d:
f3:3c:e6:e7:ee:30:29:87:37:95:55:4f:e0:ea:89:
40:c1:fb:56:39:05:7b:9e:f7:b3:50:64:20:2a:37:
ed:b7:9a:e8:a4:43:8a:3f:d7:a5:0a:58:45:f8:73:
0b:42:15:e2:1f:d5:e4:fd:ae:7d:e9:9a:e2:7e:33:
ba:56:3b:4d:48:39:1c:97:06:0c:3a:29:3c:94:16:
73:e0:48:9a:ca:0e:e0:82:95:77:58:ba:fe:d3:ee:
61:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:93:4E:E2:5C:33:E1:2B:89:AA:98:D8:0A:E5:1F:CE:E8:F2:3F:54
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4BBFF940EA811EF96AE4A5D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.199.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:2a:6f:3e:21:df:ec:03:12:38:10:91:eb:d4:82:77:28:eb:
d0:af:5a:cf:e5:ac:67:f4:78:ac:44:37:d9:c0:60:7d:d6:c6:
ed:53:65:6a:e6:01:eb:5c:62:38:94:19:1e:d4:2b:2d:2a:17:
e6:79:9e:cf:58:94:ab:8e:6b:cc:9a:1f:38:e7:f2:20:b2:41:
6b:02:ec:74:5f:6d:6e:47:78:d6:cd:76:d7:21:ff:2a:3c:c5:
1f:21:6a:2a:11:e5:95:ca:07:6b:47:ce:2f:fc:cd:0f:a7:f8:
db:e6:0a:72:d3:71:cb:3a:8e:dd:47:72:cb:c2:d2:36:ef:9b:
eb:a5:7e:44:c7:60:40:93:b4:3b:1b:b4:35:f5:7b:5e:f0:f7:
d9:d6:12:5d:42:92:15:1a:a9:77:99:6e:9e:55:6b:26:46:f7:
93:8b:c7:01:ef:6b:80:61:3d:b0:53:2f:97:66:e7:ce:f5:fc:
a3:65:84:10:f1:44:5b:08:1e:22:39:c9:d5:3a:46:cf:20:97:
66:bf:a8:83:db:aa:27:90:a5:83:9a:02:10:36:94:35:4f:4a:
00:d0:92:8d:38:8c:a2:db:81:72:53:0a:bf:a8:8e:a3:d0:92:
0f:a7:40:e7:16:e8:50:a8:43:59:b8:e4:57:89:4d:4e:7f:c6:
1c:38:65:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:02:08 2024 by rpki-client on console-ams.rpki-client.org